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DETAILED ACTION 

RESPONSE TO ARGUMENTS 

1 . Applicant's arguments filed 08/02/2010 have been fully considered but they are 
not persuasive. Currently, claims 2-3 and 22-30 are cancelled; claims 32-40 are 
withdrawn; and claims 1, 4-21 and 31 are pending for examination. 

2. In response to applicant's arguments with regard to the independent claims 1 , 
20-21 and 31 rejected under 35 U.S.C. 103(a) that the combination of the references 
does not teach/suggest the claimed feature " and purely determined by the first 
interface " because even though the present invention does contain protection domains 
(e.g. Scheifler 's Protection domains), the corresponding independent claim does not 
relate to them and the protection domains as presented in the present invention differ 
from those in Scheifler ; additionally, Colburn like Scheifler depends on information that 
is greater than simply the call to a specific interface and the security policy associated 
with that specific interface; applicant's arguments have fully been considered, but are 
not found to be persuasive. 

Please note that one cannot show nonobviousness by attacking references 
individually where the rejections are based on combinations of references. See In re 
Keller, 642 F.2d 413, 208 USPQ 871 (CCPA 1981); In re Merck & Co., 800 F.2d 1091, 
231 USPQ 375 (Fed. Cir. 1986). And. Scheifler does teach functional equivalency to 
determining access to other interfaces (e.g. c:/thisfile) to be purely determined by the 
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first interface (e.g. c:/) (Fig. 4-5 and col. 11, 1. 20 to col. 13, 1. 45), as the determination 
for access to any specific file in a directory (e.g. c:/thisfile) is implied (e.g. purely 
determined) by the determined accessing to said directory (e.g. c:/). 

I. OBJECTIONS TO THE CLAIMS 

3. Claim 21 is objected to because of the following informalities: 

in claim 21 , lines 6-7, "... with the target object and purely based on the first 
interface ..." should be replaced with with the target object and wherein the means 
for determining is purely based on the first interface 

Please note that the request for the replacements as stated above is for the 
purpose to improve the clarity of the claim language. Appropriate correction is required. 

II. REJECTIONS BASED ON PRIOR ART 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

4. Claims 1, 4-21 and 31 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Scheifler etal. (US Patent 6,1 38,238) in view of Colburn et al. (US 



Patent 6,173,404). 
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5. As per claims 1 , 20-21 and 31 , Scheifler teaches a method, a system and a 
computer readable storage medium storing instructions for controlling a computer 
device for controlling access to an object in an operating system, the method, system 
and computer readable storage medium comprising: 

a module configured means for receiving a call from an external thread (Fig. 6, 
ref. 6200) to a first interface (e.g. write to any file in a directory, such as "c:/") of a target 
object (Fig. 6, ref. 4500-1 ) (Fig. 1 ; Fig. 4-5; col. 4, 1. 51 to col. 5, 1. 3 and col. 9, 1. 1 1 to 
col. 14, 1. 38); 

a module configured with means for determining whether the external thread has 
access to other interfaces (e.g. write to any specific file in the directory, such as 
"c:/thisfile") of the target object based on the call received at the first interface (Fig. 4-5 
and col. 11, 1. 20 to col. 13, 1. 45), wherein the determination is in association with 
implied permission; 

wherein the means for determining is purely determined by (based on) the first 
interface (Fig. 4-5 and col. 1 1, 1. 20 to col. 13, 1. 45), as the determination for access to 
any specific file in a directory (e.g. c:/thisfile) is implied (e.g. purely determined) by the 
determined accessing to said directory (e.g. c:/); and 

a module configured with means for to grant access to the other interfaces 
according to the determination (Fig. 4-5 and col. 11, 1. 20 to col. 13, 1. 45). 

Scheifler does not expressly teach the method, system and computer readable 
medium comprising: wherein the call from an object; the target object determining 
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access to the other interfaces; and wherein the determination step comprising means 
for examining a security policy contained entirely within the target object. 

Colburn teaches the method, system and computer readable medium 
comprising: a call received from an object (Fig. 5, ref. 100); a target object (Fig. 8, ref. 
160, 184, 194) determining (at the target object) access to the other interfaces; and 
wherein the determination step comprising means for examining a security policy (Fig. 
8, ref. 184, 194) contained entirely within the target object (Fig. 8, ref. 160) (Fig. 7A-7B; 
Fig. 8; col. 1,1. 12 to col. 3, 1. 45; col. 7, II. 26-52 and col. 11, 1. 25 to col. 12,1.58), by 
combination Colburn 's target security scheme with Scheifler 's permission 
implementation, the resulting combination further teaches the target object 
implementing access authorization in association with implied permission to other 
interfaces, as the target object determines the access authorization of the received call 
to the other interfaces by examining the target object's own security policies. 

It would have been obvious for one of ordinary skill in this art, at the time of 
invention was made to include Colburn 's inter-object security scheme into Scheifler 's 
object for the benefit of implementing a more robust security scheme between objects 
( Colburn , col. 3, II. 34-37) to obtain the invention as specified in claims 1 , 20-21 and 31 . 

6. As per claim 4, Scheifler and Colburn teach all the limitation of claim 1 as 
discussed above, wherein Scheifler further teaches the method further comprising 
determining whether the external object and the target object operate in a same process 
(e.g. same class of valid digital signature or not) ( Scheifler . col. 9, 1. 52 to col. 11,1. 19). 
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7. As per claim 5, Scheifler and Col burn teach all the limitation of claim 1 as 
discussed above, wherein Scheifler further teaches the method comprising wherein 
determining whether the external object has access to the other interfaces of the target 
object further comprises: identifying the other interfaces of the target object that can be 
accessed when the first interface is being requested by the external object ( Scheifler , 
col. 1 1, 1. 20 to col. 13, 1. 45), as the other interfaces must be identified in order to 
proper grant the permission via the implied permission. 

8. As per claim 6, Scheifler and Colburn teach all the limitation of claim 1 as 
discussed above, wherein both further teach the method further comprising determining 
a first process of the target object ( Scheifler . col. 9, 1. 52 to col. 1 1 , 1. 1 9 and Colburn . 
Fig. 8; Fig. 10; col. 1, 1. 12 to col. 3, 1. 45), such as determining whether the target 
object's first process corresponds to either valid digital signature with known keys or 
digital signature that cannot be verified thus a default key is utilized. 

9. As per claim 7, Scheifler and Colburn teach all the limitation of claim 6 as 
discussed above, wherein both further teach the method further comprising determining 
a second process of the external object ( Scheifler . col. 9, 1. 52 to col. 11, 1. 19 and 
Colburn . Fig. 8; Fig. 1 0; col. 1 , 1. 1 2 to col. 3, 1. 45), such as determining whether the 
external object's second process corresponds to either valid digital signature with known 
keys or digital signature that cannot be verified thus a default key is utilized. 
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1 0. As per claim 8, Scheifler and Col burn teach all the limitation of claim 7 as 
discussed above, wherein both further teach the method further comprising performing 
a cross-process communication between the target object and the external object 
( Scheifler , col. 9, 1. 52 to col. 11,1. 19 and Col burn . Fig. 8; Fig. 10; col. 1, 1. 12 to col. 3, 
I. 45; col. 13, 1. 44 to col. 14, 1. 34), such as allowing restrictive access to the target 
object as the target object is under valid digital signature process and the external 
object is not under valid digital signature process. 

11. As per claim 9, Scheifler and Colburn teach all the limitation of claim 1 as 
discussed above, wherein both further teach the method further comprising securing a 
channel for each interface of the target object ( Scheifler . col. 9, 1. 52 to col. 11, 1. 19 and 
Colburn , Fig. 8; Fig. 10; col. 1 , 1. 12 to col. 3, 1. 45; col. 13, 1. 44 to col. 14, 1. 34), as the 
channel is secured via a cryptographic key over a network between client and server. 

12. As per claim 1 0, Scheifler and Colburn teach all the limitation of claim 1 as 
discussed above, wherein both further teach the method comprising wherein 
determining whether the external object has access to the other interfaces of the target 
object further comprises analyzing access constraints within the target object ( Scheifler , 
col. 11,1.20 to col. 13, 1. 45 and Colburn . Fig. 7A-7B; Fig. 8; col. 13,1.44 to col. 14,1. 
34), as the analyzing of the implied permission is located within the target object. 
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1 3. As per claim 1 1 , Scheifler and Colburn teach all the limitation of claim 1 as 
discussed above, wherein both further teach the method further comprising analyzing 
interface access data stored within the target object ( Scheifler , col. 1 1 , 1. 20 to col. 13, 1. 
45 and Colburn , Fig. 7A-7B; Fig. 8; col. 13, 1. 44 to col. 14, 1. 34). 

14. As per claim 12, Scheifler and Colburn teach all the limitation of claim 1 as 
discussed above, wherein both further teach the method further comprising determining 
whether the target object and the external object are in a same protection domain 
( Scheifler , Fig 4; col. 11, 1. 20 to col. 13, 1. 45 and Colburn , Fig. 8). 

1 5. As per claim 1 3, Scheifler and Colburn teach all the limitation of claim 1 2 as 
discussed above, wherein both further teach the method comprising wherein the 
protection domain is a process ( Scheifler , Fig 4 and col. 9, 1. 52 to col. 13, 1. 45 and 
Colburn , Fig. 8), wherein the process is associated with valid digital signature and un- 
validated digital signature. 

16. As per claim 1 4, Scheifler and Colburn teach all the limitation of claim 1 as 
discussed above, wherein Colburn further teaches the method comprising wherein the 
target object sets the target object's own security policy ( Colburn , Fig. 8), the target 
object sets the target object's own security policy as the access constraints and access 
authorization resides within the target object. 
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1 7. As per claim 1 5, Scheifler and Col burn teach all the limitation of claim 1 as 
discussed above, wherein Scheifler further teaches the method comprising wherein 
determining whether the external object has access to the other interfaces further 
comprises determining capabilities of the external object ( Scheifler , col. 9, 1. 52 to col. 
13, 1. 45), as the capability corresponds to the capability of transferring data along with 
the know key or without the know key. 

18. As per claim 16, Scheifler and Colburn teach all the limitation of claim 1 5 as 
discussed above, wherein Colburn further teaches the method comprising further 
comprising mapping capabilities of the external object to the other interfaces of the 
target object ( Scheifler , col. 9, 1. 52 to col. 13, 1. 45), such as mapping the capability of 
transferring data with the know key to other interfaces for grater access. 

1 9. As per claim 1 7, Scheifler and Colburn teach all the limitation of claim 1 as 
discussed above, wherein both further teach the method comprising wherein the target 
object and the external object are created using a same methodology (e.g. object 
oriented by Java) ( Scheifler . col. 9, 1. 52 to col. col. 11, 1. 19 and Colburn . col. 1, 1. 12 to 
col. 3, 1. 45). 



20. As per claim 1 8, Scheifler and Colburn teach all the limitation of claim 1 as 
discussed above, wherein Colburn further teaches the method comprising wherein the 
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target object and the external object are ' 
to col. 3, 1. 45). 
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in a view hierarchy ( Colburn , col. 1, 1. 12 



21 . As per claim 1 9, Scheifler and Colburn teach all the limitation of claim 1 8 as 
discussed above, wherein Colburn further teaches the method comprising wherein a 
view has a parent calling interface, a child calling interface, and a child managing 
interface ( Colburn , col. 6, II. 29-52), as the hierarchal relation between parent-child is 
well known with the corresponding above interfaces for the parent and the child. 
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III. CLOSING COMMENTS 

Conclusion 

a. STATUS OF CLAIMS IN THE APPLICATION 

The following is a summary of the treatment and status of all claims in the 
application as recommended by M.P.E.P. 707.07(i): 

ad) CLAIMS REJECTED IN THE APPLICATION 

THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1 .136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the mailing date of this final action. 

b. DIRECTION OF FUTURE CORRESPONDENCES 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Chun-Kuan (Mike) Lee whose telephone number is 
(571 ) 272-0671 . The examiner can normally be reached on 8AM to 5PM. 
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IMPORTANT NOTE 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Alford Kindred can be reached on (571) 272-4037. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 

Patent Application Information Retrieval (PAIR) system. Status information for 

published applications may be obtained from either Private PAIR or Public PAIR. 

Status information for unpublished applications is available through Private PAIR only. 

For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 

you have questions on access to the Private PAIR system, contact the Electronic 

Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 

USPTO Customer Service Representative or access to the automated information 

system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/Chun-Kuan Lee/ 
Primary Examiner 
Art Unit 2181 
August 23, 2010 



